PMG ClamAV updates fail

Xela

Well-Known Member
Oct 12, 2017
92
2
48
Hi there,

I am getting fails while updating ClamAV:

Code:
ClamAV update process started at Sun Jan 29 20:46:38 2023
WARNING: Can't query current.cvd.clamav.net
WARNING: Invalid DNS reply. Falling back to HTTP mode.
Trying to retrieve CVD header from https://database.clamav.net/daily.cvd
WARNING: remote_cvdhead: Download failed (6) WARNING:  Message: Couldn't resolve host name
WARNING: Failed to get daily database version information from server: https://database.clamav.net
ERROR: check_for_new_database_version: Failed to find daily database using server https://database.clamav.net.

Ping is ok:

Code:
# ping database.clamav.net
PING database.clamav.net(2606:4700::6810:da54 (2606:4700::6810:da54)) 56 data bytes
64 bytes from 2606:4700::6810:da54 (2606:4700::6810:da54): icmp_seq=1 ttl=58 time=2.37 ms
64 bytes from 2606:4700::6810:da54 (2606:4700::6810:da54): icmp_seq=2 ttl=58 time=2.37 ms
--- database.clamav.net ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1002ms
rtt min/avg/max/mdev = 2.372/2.372/2.373/0.000 ms

Using latest Kernel and PMG 7.2-3:

Code:
Linux mx1 6.1.2-1-pve #1 SMP PREEMPT_DYNAMIC PVE 6.1.2-1 (2023-01-10T00:00Z) x86_64 GNU/Linux

Is this known? Do you know how this is solved?
 
Last edited:
Hmm - check the journal since boot (`journalctl -b`) - maybe it contains some hints where the issue is coming from.
 
Dear Stoiko,

thank you for your support. There are no hints with 'journalctl -b ', everything is fine. I installed apparmor-utils and changed complain-mode (aa-complain /usr/sbin/clamd). --- (https://forum.proxmox.com/threads/clamav-freshclam-update-errors.103848/#post-458710)

I am still getting:

Code:
ClamAV update process started at Mon Jan 30 19:37:54 2023
WARNING: Can't query current.cvd.clamav.net
WARNING: Invalid DNS reply. Falling back to HTTP mode.
Trying to retrieve CVD header from https://database.clamav.net/daily.cvd
WARNING: remote_cvdhead: Download failed (6) WARNING:  Message: Couldn't resolve host name
WARNING: Failed to get daily database version information from server: https://database.clamav.net
ERROR: check_for_new_database_version: Failed to find daily database using server https://database.clamav.net.
Trying again in 5 secs...

Best regards
 
Try uninstalling apparmor and rebooting

if this does not help - please share the journal
 
I removed apparmor with 'apt-get remove apparmor' (is purging a better way ?) and clamav updates are working now, also chrony is working now and ntp is also installable after removing apparmor. Isn't that a security issue when apparmor is removed?
 
Last edited:
Isn't that a security issue when apparmor is removed?
It depends on your particular needs - but for most installations it's acceptable to keep it removed (our installer does not ship it for example)
The issue is that the clamav apparmor profiles seem incompatible with newer kernels like the pve-kernel (although I'm not sure they work with the current stock debian kernel either (haven't tried))
If you want to keep apparmor - you probably need to adapt the profile for clamav and freshclam

I hope this helps!
 
  • Like
Reactions: Xela

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!